Bug#610960: CVE-2010-4267: Buffer overflow - target squeeze

To: 610960@bugs.debian.org
Subject: Bug#610960: CVE-2010-4267: Buffer overflow - target squeeze
From: Mark Purcell <mark@purcell.id.au>
Date: Thu, 27 Jan 2011 00:54:15 +1100
Message-id: <[🔎] 201101270054.16259.msp@debian.org>
Reply-to: Mark Purcell <mark@purcell.id.au>, 610960@bugs.debian.org

+hplip (3.10.6-2) unstable; urgency=high
+
+  * SECURITY UPDATE: denial of service and possible arbitrary code
+    execution via long SNMP response - Thanks Till
+    - debian/patches/CVE-2010-4267.dpatch: validate dLen in io/hpmud/pml.c.
+    - Fixes "CVE-2010-4267: Buffer overflow" (Closes: #610960)
+  * Ack NMU - Thanks Evgeni
+
+ -- Mark Purcell <msp@debian.org>  Thu, 27 Jan 2011 00:48:24 +1100
+

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

Prev by Date: Processed: limit source to hplip, tagging 610960
Next by Date: hplip_3.11.1-1_amd64.changes REJECTED
Previous by thread: Processed: limit source to hplip, tagging 610960
Next by thread: hplip_3.11.1-1_amd64.changes REJECTED
Index(es):
- Date
- Thread